$ rpki-client -vvf rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa File: 90AB89E4547511EEB44F391AC4F9AE02.roa (raw, json) Hash identifier: vyhmQGxIqB8wrja0wWMnBsUj7C/+l/NItAqY6GbsZx8= Subject key identifier: EC:97:EF:6A:E9:7D:01:91:35:1B:14:4B:C8:1B:2A:73:55:16:F1:70 Certificate issuer: /CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4 Certificate serial: 0458 Authority key identifier: 16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa Signing time: Sat 31 Aug 2024 02:04:40 +0000 ROA not before: Sat 31 Aug 2024 02:04:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150389 IP address blocks: 103.170.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4 Validity Not Before: Aug 31 02:04:40 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d27a38-3c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0c:83:05:a2:6e:8f:18:fa:44:c2:c2:68:e9: 3d:ef:76:af:7c:54:55:6d:57:e3:b7:61:bc:4d:72: a2:bd:f7:6b:f9:1f:80:de:49:48:21:23:cd:5f:19: 14:d7:9f:1d:61:7f:c2:00:c7:77:d7:67:98:f8:0c: 7f:15:42:b3:14:ed:1d:96:e9:c8:c5:cf:93:b7:9b: 7e:a3:fc:f5:68:1d:71:05:6b:d1:ca:ad:ef:b7:81: f8:7b:d8:28:b6:dc:54:2a:9b:1a:1a:cb:94:f2:ea: 1e:69:64:24:cd:2b:86:55:29:40:27:8b:9f:e5:ee: 4a:5d:98:32:31:4f:0b:23:90:43:39:2c:23:e8:91: 06:37:f8:09:f7:c9:40:e2:2c:0a:4d:0a:be:94:ef: dc:fd:90:52:e6:f8:ed:bc:8a:e9:8f:08:bc:0e:2c: 67:1b:b0:5d:bb:d5:06:10:bb:75:cd:e8:f5:67:2e: 0b:74:b5:84:fd:b6:e9:f2:e5:3a:ac:65:4a:ce:f4: 30:32:fa:d8:7f:9f:01:52:89:0b:1f:d2:83:a5:a0: 18:28:3b:2d:2b:2f:c3:c3:5a:6d:d9:6d:ce:79:d4: 0b:52:98:bb:32:c2:bf:78:04:50:b3:b1:7f:70:cb: db:45:b0:9f:07:ca:c5:9a:e4:09:1b:8b:79:3b:75: 6c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:97:EF:6A:E9:7D:01:91:35:1B:14:4B:C8:1B:2A:73:55:16:F1:70 X509v3 Authority Key Identifier: keyid:16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.208.0/23 Signature Algorithm: sha256WithRSAEncryption 80:ae:96:8f:67:fa:b2:ec:b7:e4:c5:c6:54:1b:9e:f8:62:6f: ed:24:12:f3:c2:b7:a1:44:18:95:90:22:31:ab:f6:41:a3:70: 82:b1:f0:14:65:9e:fd:da:b1:2b:6b:18:13:4d:85:8b:d8:c8: 2f:b2:99:da:7a:4e:72:29:3f:e0:55:75:e5:0f:05:b7:44:84: f8:12:34:42:40:d0:24:92:cd:19:b0:b7:e1:61:00:de:f6:31: 0f:d0:57:5c:17:59:a5:f0:55:07:0b:fa:ca:f4:8c:f0:fd:cb: 8d:ed:5b:bf:fa:d9:89:90:b4:3f:0c:df:bb:b4:e5:bc:06:d0: 49:37:79:52:67:56:95:d5:2b:db:0f:58:5a:28:8e:15:db:35: 02:f3:30:c9:d6:5e:57:e6:6a:28:5f:11:ed:74:e2:f1:89:8b: 5a:ec:d6:5a:50:0e:c2:4f:fd:a4:a1:c7:f6:f6:c9:df:b7:61: fb:f9:ae:2e:de:27:1a:c8:34:b3:1e:a9:32:7a:d1:2e:9d:7b: 02:a7:bf:71:97:7a:f0:f6:39:a8:20:96:ea:0a:35:3d:d8:c3: 88:d7:a1:15:2a:b4:92:c8:30:a9:a6:25:fe:d5:8c:fc:de:45: be:1e:76:47:9e:1b:16:65:a3:d5:96:d5:21:82:91:4c:99:f8: fc:c8:a1:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0RTUxMTAvBgNVBAUTKDE2MDhCRjQ2MjRBN0UxQjcyMzIyOEI0NjYxREQ2NjFF NzBBRUYzRjQwHhcNMjQwODMxMDIwNDQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyN2EzOC0zYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wyDBaJujxj6RMLCaOk973avfFRVbVfjt2G8TXKivfdr+R+A3klIISPNXxkU 158dYX/CAMd312eY+Ax/FUKzFO0dlunIxc+Tt5t+o/z1aB1xBWvRyq3vt4H4e9go ttxUKpsaGsuU8uoeaWQkzSuGVSlAJ4uf5e5KXZgyMU8LI5BDOSwj6JEGN/gJ98lA 4iwKTQq+lO/c/ZBS5vjtvIrpjwi8DixnG7Bdu9UGELt1zej1Zy4LdLWE/bbp8uU6 rGVKzvQwMvrYf58BUokLH9KDpaAYKDstKy/Dw1pt2W3OedQLUpi7MsK/eARQs7F/ cMvbRbCfB8rFmuQJG4t5O3VsAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOyX72rp fQGRNRsUS8gbKnNVFvFwMB8GA1UdIwQYMBaAFBYIv0Ykp+G3IyKLRmHdZh5wrvP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDRFNS8yRTgyMkRBQTFC OTExMUVDOUU3QTMxMTRDNEY5QUUwMi9GZ2lfUmlTbjRiY2pJb3RHWWQxbUhuQ3U4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnaV9SaVNuNGJjaklvdEdZZDFtSG5DdThfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0RTUvMkU4MjJEQUExQjkxMTFFQzlFN0EzMTE0QzRGOUFFMDIvOTBBQjg5RTQ1 NDc1MTFFRUI0NEYzOTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqtAwDQYJKoZIhvcNAQELBQADggEBAICulo9n+rLst+TF xlQbnvhib+0kEvPCt6FEGJWQIjGr9kGjcIKx8BRlnv3asStrGBNNhYvYyC+ymdp6 TnIpP+BVdeUPBbdEhPgSNEJA0CSSzRmwt+FhAN72MQ/QV1wXWaXwVQcL+sr0jPD9 y43tW7/62YmQtD8M37u05bwG0Ek3eVJnVpXVK9sPWFoojhXbNQLzMMnWXlfmaihf Ee104vGJi1rs1lpQDsJP/aShx/b2yd+3Yfv5ri7eJxrINLMeqTJ60S6dewKnv3GX evD2OaggluoKNT3Yw4jXoRUqtJLIMKmmJf7VjPzeRb4edkeeGxZlo9WW1SGCkUyZ +PzIodU= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org